US2009158049A1PendingUtilityA1

Building a security access system

46
Assignee: FISKE MICHAEL STEPHENPriority: Apr 6, 2005Filed: Jun 7, 2008Published: Jun 18, 2009
Est. expiryApr 6, 2025(expired)· nominal 20-yr term from priority
H04L 2209/805G06F 21/46H04L 9/3231G06F 21/34G06F 21/32H04L 9/0866
46
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

In an embodiment, a secure module is provided that provides access keys to an unsecured system. In an embodiment, the secure module may generate passcodes and supply the passcodes to the unsecured system. In an embodiment, the access keys are sent to the unsecured system after receiving the passcode from the unsecured system. In an embodiment, after authenticating the passcode, the secure module does not store the passcode in its memory. In an embodiment, the unsecured module requires the access key to execute a set of instructions or another entity. In an embodiment, the unsecured system does not store access keys. In an embodiment, the unsecured system erases the access key once the unsecured system no longer requires the access key. In an embodiment, the unsecured system receives a new passcode to replace the stored passcode after using the stored passcode. Each of these embodiments may be used separately.

Claims

exact text as granted — not AI-modified
1 . A method comprising:
 installing onto a machine-readable medium instructions for
 generating one or more passcodes based on user data, 
   wherein the one or more passcodes are not stored on the machine-readable medium and the machine readable medium being for storing at least information that is not in transit   
   
   
       2 . The method of  claim 1 , further comprising:
 assembling an interface for communicating with another machine.   
   
   
       3 . The method of  claim 1 , further comprising:
 assembling an acquisition mechanism for acquiring biometric information.   
   
   
       4 . The method of  claim 1 , further comprising:
 assembling circuitry including at least
 the machine-readable medium and 
 circuitry for performing the instructions stored on the machine-readable medium. 
   
   
   
       5 . The method of  claim 1 , further comprising:
 coupling an acquisition mechanism to circuitry that
 generates the passcodes, and 
 is associated with the machine readable medium. 
   
   
   
       6 . The method of  claim 1 , further comprising:
 coupling an interface to circuitry that
 generates the passcodes, and 
 is associated with the machine readable medium. 
   
   
   
       7 . The method of  claim 1 , further comprising:
 installing onto the machine-readable medium instructions for
 converting user data taken during a setup phase to user information. 
   
   
   
       8 . The method of  claim 1 , further comprising:
 installing onto the machine-readable medium instructions for
 comparing user data taken during a request to the user information. 
   
   
   
       9 . The method of  claim 1 , further comprising:
 installing onto the machine-readable medium instructions for
 generating an access key. 
   
   
   
       10 . The method of  claim 9 , further comprising:
 installing onto the machine-readable medium instructions for
 storing the access key. 
   
   
   
       11 . The method of  claim 1 , further comprising:
 installing onto the machine-readable medium instructions for
 comparing passcodes to the instructions for generating passcodes. 
   
   
   
       12 . A method comprising:
 assembling an interface;   assembling an acquisition mechanism;   assembling circuitry including at least
 a machine-readable medium and 
 circuitry for performing the instructions stored on the machine-readable medium; 
   coupling the acquisition mechanism to the circuitry;   coupling the interface to the circuitry; and   installing onto the machine-readable medium instructions for
 converting user data taken during a setup phase to user information, 
 comparing user data taken during a request to the user information, 
 generating an access key, 
 generating passcodes, 
 storing the access key, and 
 comparing passcodes to the instructions for generating passcodes; 
   wherein
 passcodes are not stored on the machine-readable medium and 
 the machine readable medium being at least for storing information that is not in transit. 
   
   
   
       13 . The method of  claim 1 , the user data including information that is based at least in-part on a biometric print. 
   
   
       14 . The method of  claim 1 , further comprising:
 installing the machine-readable medium in a first system that is configured for transmitting a request to perform a task to a second system, the first system does not include an operating system.   
   
   
       15 . The method of  claim 1 , the one or more instructions include instructions for receiving from the second system a copy of the passcode,
 comparing the copy of the passcode received to the passcode generated,   and   if the copy of the passcode received and the passcode generated match,
 sending a request to perform a task. 
   
   
   
       16 . The method of  claim 1 , further comprising:
 installing on the machine-readable medium one or more instructions for displaying the passcode to a user.   
   
   
       17 . The method of  claim 1 ,
 the user data including at least biometric data;   the one or more instructions for generating, including at least one or more instructions for converting the user data to user information,   after the authenticating, generating an encryption key from at least the user information, and   generating the passcode from at least the encryption key, therein forming the passcode such that the passcode is based on the biometric data; and   the method further comprising authenticating a user by comparing biometric data newly acquired from the user to user information stored on the machine readable medium.   
   
   
       18 . The method of  claim 1 , further comprising:
 forming a secure area, the secure area including the machine readable medium in which the one or more instructions are embedded, the secure area lacking an operating system.   
   
   
       19 . The method of  claim 18 , the forming of the secure area includes at least coupling a processor to the machine readable medium, the method further comprising:
 coupling an interface to the processor, the interface being for transmitting the passcode to another system;   coupling an acquisition mechanism to the processor, the acquisition mechanism being for acquiring biometric data; and   enclosing the processor, at least part of the interface, and the machine readable medium within a housing, that is sized to fit within a user's hand.   
   
   
       20 . The method of  claim 19 , the housing 2 to 6 inches long and less than a half inch in diameter. 
   
   
       21 . The method of  claim 1 ,
 the user data including information based at least in-part on a biometric print, the one or more instructions for generating, including at least one or more instructions for
 converting the user data to user information, 
 after the authenticating, generating an encryption key from at least the user information, and 
   generating the passcode from at least the encryption key, therein forming the passcode
 such that the passcode is based on the biometric data; 
   the method, further comprising:   installing the machine readable medium in a first system that is configured for transmitting
 a request to perform a task to a second system, the first system does not include an operating system, 
   the installing of the one or more instructions includes installing one or more instructions for
 authenticating a user by comparing biometric data newly acquired from the user to user information stored on the machine readable medium. 
 receiving from the second system a copy of the passcode, 
 comparing the copy of the passcode received to the passcode generated, and 
 if the passcode matches, sending a request to perform a task. 
   
   
   
       22 . A method comprising:
 installing onto a machine readable medium instructions that when implemented cause a processor to automatically generate one or more passcodes based on user data,   wherein
 the one or more passcodes are not stored on the machine readable medium, and the machine readable medium being volatile or non-volatile memory. 
   
   
   
       23 . The method of  claim 1 , further comprising installing on the machine readable medium machine instructions for invoking a user-implemented setup phase. 
   
   
       24 . The method of  claim 16 , the instructions for generating the passcodes include one or more instructions for
 generating passcodes that include
 at least one symbol that is displayed by invoking the instruction for displaying, and 
 at least one symbol that is not displayed as a result of invoking the instructions for displaying.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.